/*
Unix SMB/Netbios implementation.
Version 1.9.
Samba Web Administration Tool
Copyright (C) Andrew Tridgell 1997-1998
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
*/
#ifdef SYSLOG
#undef SYSLOG
#endif
#include "includes.h"
#include "smb.h"
#define GLOBALS_SNUM -1
static pstring servicesf = CONFIGFILE;
static BOOL demo_mode = False;
static BOOL have_write_access = False;
static BOOL have_read_access = False;
static int iNumNonAutoPrintServices = 0;
/*
* Password Management Globals
*/
#define SWAT_USER "username"
#define OLD_PSWD "old_passwd"
#define NEW_PSWD "new_passwd"
#define NEW2_PSWD "new2_passwd"
#define CHG_S_PASSWD_FLAG "chg_s_passwd_flag"
#define CHG_R_PASSWD_FLAG "chg_r_passwd_flag"
#define ADD_USER_FLAG "add_user_flag"
#define DELETE_USER_FLAG "delete_user_flag"
#define DISABLE_USER_FLAG "disable_user_flag"
#define ENABLE_USER_FLAG "enable_user_flag"
#define RHOST "remote_host"
/* we need these because we link to locking*.o */
void become_root(void) {}
void unbecome_root(void) {}
/****************************************************************************
****************************************************************************/
static int enum_index(int value, struct enum_list *enumlist)
{
int i;
for (i=0;enumlist[i].name;i++)
if (value == enumlist[i].value) break;
return(i);
}
static char *fix_backslash(char *str)
{
static char newstring[1024];
char *p = newstring;
while (*str) {
if (*str == '\\') {*p++ = '\\';*p++ = '\\';}
else *p++ = *str;
++str;
}
*p = '\0';
return newstring;
}
static char *stripspace(char *str)
{
static char newstring[1024];
char *p = newstring;
while (*str) {
if (*str != ' ') *p++ = *str;
++str;
}
*p = '\0';
return newstring;
}
static char *make_parm_name(char *label)
{
static char parmname[1024];
char *p = parmname;
while (*label) {
if (*label == ' ') *p++ = '_';
else *p++ = *label;
++label;
}
*p = '\0';
return parmname;
}
/****************************************************************************
include a lump of html in a page
****************************************************************************/
static int include_html(char *fname)
{
FILE *f = sys_fopen(fname,"r");
char buf[1024];
int ret;
if (!f) {
d_printf("ERROR: Can't open %s\n", fname);
return 0;
}
while (!feof(f)) {
ret = fread(buf, 1, sizeof(buf), f);
if (ret <= 0) break;
fwrite(buf, 1, ret, stdout);
}
fclose(f);
return 1;
}
/****************************************************************************
start the page with standard stuff
****************************************************************************/
static void print_header(void)
{
if (!cgi_waspost()) {
d_printf("Expires: 0\r\n");
}
d_printf("Content-type: text/html\r\n\r\n");
if (!include_html("include/header.html")) {
d_printf("\n");
d_printf("\n
\nSamba Web Administration Tool\n\n\n\n");
}
}
/****************************************************************************
finish off the page
****************************************************************************/
static void print_footer(void)
{
if (!include_html("include/footer.html")) {
d_printf("\n\n\n");
}
}
/****************************************************************************
display one editable parameter in a form
****************************************************************************/
static void show_parameter(int snum, struct parm_struct *parm)
{
int i;
void *ptr = parm->ptr;
char* str;
if (parm->class == P_LOCAL && snum >= 0) {
ptr = lp_local_ptr(snum, ptr);
}
str = stripspace(parm->label);
strupper (str);
d_printf("
",
str, parm->label);
switch (parm->type) {
case P_CHAR:
d_printf("",
make_parm_name(parm->label), *(char *)ptr);
d_printf("",
make_parm_name(parm->label),(char)(parm->def.cvalue));
break;
case P_LIST:
d_printf("label));
if ((char ***)ptr && *(char ***)ptr && **(char ***)ptr) {
char **list = *(char ***)ptr;
for (;*list;list++) {
d_printf("%s%s", *list, ((*(list+1))?" ":""));
}
}
d_printf("\">");
d_printf("label));
if (parm->def.lvalue) {
char **list = (char **)(parm->def.lvalue);
for (; *list; list++) {
d_printf("%s%s", *list, ((*(list+1))?" ":""));
}
}
d_printf("\'\">");
break;
case P_STRING:
case P_USTRING:
d_printf("",
make_parm_name(parm->label), *(char **)ptr);
d_printf("",
make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
break;
case P_GSTRING:
case P_UGSTRING:
d_printf("",
make_parm_name(parm->label), (char *)ptr);
d_printf("",
make_parm_name(parm->label),fix_backslash((char *)(parm->def.svalue)));
break;
case P_BOOL:
d_printf("");
d_printf("",
make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?0:1);
break;
case P_BOOLREV:
d_printf("");
d_printf("",
make_parm_name(parm->label),(BOOL)(parm->def.bvalue)?1:0);
break;
case P_INTEGER:
d_printf("", make_parm_name(parm->label), *(int *)ptr);
d_printf("",
make_parm_name(parm->label),(int)(parm->def.ivalue));
break;
case P_OCTAL:
d_printf("", make_parm_name(parm->label), octal_string(*(int *)ptr));
d_printf("",
make_parm_name(parm->label),
octal_string((int)(parm->def.ivalue)));
break;
case P_ENUM:
d_printf("");
d_printf("",
make_parm_name(parm->label),enum_index((int)(parm->def.ivalue),parm->enum_list));
break;
case P_SEP:
break;
}
d_printf("
\n");
}
/****************************************************************************
display a set of parameters for a service
****************************************************************************/
static void show_parameters(int snum, int allparameters, int advanced, int printers)
{
int i = 0;
struct parm_struct *parm;
char *heading = NULL;
char *last_heading = NULL;
while ((parm = lp_next_parameter(snum, &i, allparameters))) {
if (snum < 0 && parm->class == P_LOCAL && !(parm->flags & FLAG_GLOBAL))
continue;
if (parm->class == P_SEPARATOR) {
heading = parm->label;
continue;
}
if (parm->flags & FLAG_HIDE) continue;
if (snum >= 0) {
if (printers & !(parm->flags & FLAG_PRINT)) continue;
if (!printers & !(parm->flags & FLAG_SHARE)) continue;
}
if (!advanced) {
if (!(parm->flags & FLAG_BASIC)) {
void *ptr = parm->ptr;
if (parm->class == P_LOCAL && snum >= 0) {
ptr = lp_local_ptr(snum, ptr);
}
switch (parm->type) {
case P_CHAR:
if (*(char *)ptr == (char)(parm->def.cvalue)) continue;
break;
case P_LIST:
if (!lp_list_compare(*(char ***)ptr, (char **)(parm->def.lvalue))) continue;
break;
case P_STRING:
case P_USTRING:
if (!strcmp(*(char **)ptr,(char *)(parm->def.svalue))) continue;
break;
case P_GSTRING:
case P_UGSTRING:
if (!strcmp((char *)ptr,(char *)(parm->def.svalue))) continue;
break;
case P_BOOL:
case P_BOOLREV:
if (*(BOOL *)ptr == (BOOL)(parm->def.bvalue)) continue;
break;
case P_INTEGER:
case P_OCTAL:
if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
break;
case P_ENUM:
if (*(int *)ptr == (int)(parm->def.ivalue)) continue;
break;
case P_SEP:
continue;
}
}
if (printers && !(parm->flags & FLAG_PRINT)) continue;
}
if (heading && heading != last_heading) {
d_printf("
%s
\n", heading);
last_heading = heading;
}
show_parameter(snum, parm);
}
}
/****************************************************************************
load the smb.conf file into loadparm.
****************************************************************************/
static BOOL load_config(BOOL save_def)
{
lp_resetnumservices();
return lp_load(servicesf,False,save_def,False);
}
/****************************************************************************
write a config file
****************************************************************************/
static void write_config(FILE *f, BOOL show_defaults)
{
fprintf(f, "# Samba config file created using SWAT\n");
fprintf(f, "# from %s (%s)\n", cgi_remote_host(), cgi_remote_addr());
fprintf(f, "# Date: %s\n\n", timestring(False));
lp_dump(f, show_defaults, iNumNonAutoPrintServices);
}
/****************************************************************************
save and reoad the smb.conf config file
****************************************************************************/
static int save_reload(int snum)
{
FILE *f;
struct stat st;
f = sys_fopen(servicesf,"w");
if (!f) {
d_printf("failed to open %s for writing\n", servicesf);
return 0;
}
/* just in case they have used the buggy xinetd to create the file */
if (fstat(fileno(f), &st) == 0 &&
(st.st_mode & S_IWOTH)) {
fchmod(fileno(f), S_IWUSR | S_IRUSR | S_IRGRP | S_IROTH);
}
write_config(f, False);
if (snum)
lp_dump_one(f, False, snum);
fclose(f);
lp_killunused(NULL);
if (!load_config(False)) {
d_printf("Can't reload %s\n", servicesf);
return 0;
}
iNumNonAutoPrintServices = lp_numservices();
load_printers();
return 1;
}
/****************************************************************************
commit one parameter
****************************************************************************/
static void commit_parameter(int snum, struct parm_struct *parm, char *v)
{
int i;
char *s;
if (snum < 0 && parm->class == P_LOCAL) {
/* this handles the case where we are changing a local
variable globally. We need to change the parameter in
all shares where it is currently set to the default */
for (i=0;ilabel, v);
}
}
}
lp_do_parameter(snum, parm->label, v);
}
/****************************************************************************
commit a set of parameters for a service
****************************************************************************/
static void commit_parameters(int snum)
{
int i = 0;
struct parm_struct *parm;
pstring label;
char *v;
while ((parm = lp_next_parameter(snum, &i, 1))) {
slprintf(label, sizeof(label)-1, "parm_%s", make_parm_name(parm->label));
if ((v = cgi_variable(label))) {
if (parm->flags & FLAG_HIDE) continue;
commit_parameter(snum, parm, v);
}
}
}
/****************************************************************************
spit out the html for a link with an image
****************************************************************************/
static void image_link(char *name,char *hlink, char *src)
{
d_printf("\n",
cgi_baseurl(), hlink, src, name);
}
/****************************************************************************
display the main navigation controls at the top of each page along
with a title
****************************************************************************/
static void show_main_buttons(void)
{
char *p;
if ((p = cgi_user_name()) && strcmp(p, "root")) {
d_printf("Logged in as %s
\n");
}
/****************************************************************************
display a welcome page
****************************************************************************/
static void welcome_page(void)
{
include_html("help/welcome.html");
}
/****************************************************************************
display the current smb.conf
****************************************************************************/
static void viewconfig_page(void)
{
int full_view=0;
if (cgi_variable("full_view")) {
full_view = 1;
}
d_printf("
Current Config
\n");
d_printf("\n");
}
/****************************************************************************
display a globals editing page
****************************************************************************/
static void globals_page(void)
{
int advanced = 0;
d_printf("
Global Variables
\n");
if (cgi_variable("Advanced") && !cgi_variable("Basic"))
advanced = 1;
if (cgi_variable("Commit")) {
commit_parameters(GLOBALS_SNUM);
save_reload(0);
}
d_printf("\n");
}
/****************************************************************************
display a shares editing page. share is in unix codepage, and must be in
dos codepage. FIXME !!! JRA.
****************************************************************************/
static void shares_page(void)
{
char *share = cgi_variable("share");
char *s;
int snum=-1;
int i;
int advanced = 0;
if (share)
snum = lp_servicenumber(share);
d_printf("
Share Parameters
\n");
if (cgi_variable("Advanced") && !cgi_variable("Basic"))
advanced = 1;
if (cgi_variable("Commit") && snum >= 0) {
commit_parameters(snum);
save_reload(0);
}
if (cgi_variable("Delete") && snum >= 0) {
lp_remove_service(snum);
save_reload(0);
share = NULL;
snum = -1;
}
if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
load_config(False);
lp_copy_service(GLOBALS_SNUM, share);
iNumNonAutoPrintServices = lp_numservices();
save_reload(0);
snum = lp_servicenumber(share);
}
d_printf("\n");
}
/*************************************************************
change a password either locally or remotely
*************************************************************/
static BOOL change_password(const char *remote_machine, char *user_name,
char *old_passwd, char *new_passwd,
int local_flags)
{
BOOL ret = False;
pstring err_str;
pstring msg_str;
if (demo_mode) {
d_printf("password change in demo mode rejected\n
");
return False;
}
if (remote_machine != NULL) {
ret = remote_password_change(remote_machine, user_name, old_passwd,
new_passwd, err_str, sizeof(err_str));
if(*err_str)
d_printf("%s\n
", err_str);
return ret;
}
/****************************************************************************
do the stuff required to add or change a password
****************************************************************************/
static void chg_passwd(void)
{
char *host;
BOOL rslt;
int local_flags = 0;
/* Make sure users name has been specified */
if (strlen(cgi_variable(SWAT_USER)) == 0) {
d_printf("
Must specify \"User Name\" \n");
return;
}
/*
* smbpasswd doesn't require anything but the users name to delete, disable or enable the user,
* so if that's what we're doing, skip the rest of the checks
*/
if (!cgi_variable(DISABLE_USER_FLAG) && !cgi_variable(ENABLE_USER_FLAG) && !cgi_variable(DELETE_USER_FLAG)) {
/*
* If current user is not root, make sure old password has been specified
* If REMOTE change, even root must provide old password
*/
if (((!am_root()) && (strlen( cgi_variable(OLD_PSWD)) <= 0)) ||
((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(OLD_PSWD)) <= 0))) {
d_printf("
Must specify \"Old Password\" \n");
return;
}
/* If changing a users password on a remote hosts we have to know what host */
if ((cgi_variable(CHG_R_PASSWD_FLAG)) && (strlen( cgi_variable(RHOST)) <= 0)) {
d_printf("
Must specify \"Remote Machine\" \n");
return;
}
/* Make sure new passwords have been specified */
if ((strlen( cgi_variable(NEW_PSWD)) <= 0) ||
(strlen( cgi_variable(NEW2_PSWD)) <= 0)) {
d_printf("
Must specify \"New, and Re-typed Passwords\" \n");
return;
}
/* Make sure new passwords was typed correctly twice */
if (strcmp(cgi_variable(NEW_PSWD), cgi_variable(NEW2_PSWD)) != 0) {
d_printf("
Re-typed password didn't match new password\n");
return;
}
}
if (cgi_variable(CHG_R_PASSWD_FLAG)) {
host = cgi_variable(RHOST);
} else if (am_root()) {
host = NULL;
} else {
host = "127.0.0.1";
}
/*
* Set up the local flags.
*/
local_flags |= (cgi_variable(ADD_USER_FLAG) ? LOCAL_ADD_USER : 0);
local_flags |= (cgi_variable(DELETE_USER_FLAG) ? LOCAL_DELETE_USER : 0);
local_flags |= (cgi_variable(ENABLE_USER_FLAG) ? LOCAL_ENABLE_USER : 0);
local_flags |= (cgi_variable(DISABLE_USER_FLAG) ? LOCAL_DISABLE_USER : 0);
rslt = change_password(host,
cgi_variable(SWAT_USER),
cgi_variable(OLD_PSWD), cgi_variable(NEW_PSWD),
local_flags);
if(local_flags == 0) {
if (rslt == True) {
d_printf("
The passwd for '%s' has been changed. \n", cgi_variable(SWAT_USER));
} else {
d_printf("
The passwd for '%s' has NOT been changed. \n",cgi_variable(SWAT_USER));
}
}
return;
}
/****************************************************************************
display a password editing page
****************************************************************************/
static void passwd_page(void)
{
char *new_name = cgi_user_name();
/*
* After the first time through here be nice. If the user
* changed the User box text to another users name, remember it.
*/
if (cgi_variable(SWAT_USER)) {
new_name = cgi_variable(SWAT_USER);
}
if (!new_name) new_name = "";
d_printf("
Server Password Management
\n");
d_printf("\n");
/*
* Do some work if change, add, disable or enable was
* requested. It could be this is the first time through this
* code, so there isn't anything to do. */
if ((cgi_variable(CHG_S_PASSWD_FLAG)) || (cgi_variable(ADD_USER_FLAG)) || (cgi_variable(DELETE_USER_FLAG)) ||
(cgi_variable(DISABLE_USER_FLAG)) || (cgi_variable(ENABLE_USER_FLAG))) {
chg_passwd();
}
d_printf("
Client/Server Password Management
\n");
d_printf("\n");
/*
* Do some work if a request has been made to change the
* password somewhere other than the server. It could be this
* is the first time through this code, so there isn't
* anything to do. */
if (cgi_variable(CHG_R_PASSWD_FLAG)) {
chg_passwd();
}
}
/****************************************************************************
display a printers editing page
****************************************************************************/
static void printers_page(void)
{
char *share = cgi_variable("share");
char *s;
int snum=-1;
int i;
int advanced = 0;
if (share)
snum = lp_servicenumber(share);
d_printf("
Printer Parameters
\n");
d_printf("
Important Note:
\n");
d_printf("Printer names marked with [*] in the Choose Printer drop-down box ");
d_printf("are autoloaded printers from ");
d_printf("Printcap Name.\n");
d_printf("Attempting to delete these printers from SWAT will have no effect.\n");
if (cgi_variable("Advanced") && !cgi_variable("Basic"))
advanced = 1;
if (cgi_variable("Commit") && snum >= 0) {
commit_parameters(snum);
if (snum >= iNumNonAutoPrintServices)
save_reload(snum);
else
save_reload(0);
}
if (cgi_variable("Delete") && snum >= 0) {
lp_remove_service(snum);
save_reload(0);
share = NULL;
snum = -1;
}
if (cgi_variable("createshare") && (share=cgi_variable("newshare"))) {
load_config(False);
lp_copy_service(GLOBALS_SNUM, share);
iNumNonAutoPrintServices = lp_numservices();
snum = lp_servicenumber(share);
lp_do_parameter(snum, "print ok", "Yes");
save_reload(0);
snum = lp_servicenumber(share);
}
d_printf("\n");
}
/****************************************************************************
MAIN()
****************************************************************************/
int main(int argc, char *argv[])
{
extern char *optarg;
extern int optind;
extern FILE *dbf;
int opt;
char *page;
fault_setup(NULL);
umask(S_IWGRP | S_IWOTH);
#if defined(HAVE_SET_AUTH_PARAMETERS)
set_auth_parameters(argc, argv);
#endif /* HAVE_SET_AUTH_PARAMETERS */
/* just in case it goes wild ... */
alarm(300);
/* we don't want any SIGPIPE messages */
BlockSignals(True,SIGPIPE);
dbf = sys_fopen("/dev/null", "w");
if (!dbf) dbf = stderr;
/* we don't want stderr screwing us up */
close(2);
open("/dev/null", O_WRONLY);
while ((opt = getopt(argc, argv,"s:a")) != EOF) {
switch (opt) {
case 's':
pstrcpy(servicesf,optarg);
break;
case 'a':
demo_mode = True;
break;
}
}
setup_logging(argv[0],False);
load_config(True);
iNumNonAutoPrintServices = lp_numservices();
load_printers();
cgi_setup(SWATDIR, !demo_mode);
print_header();
cgi_load_variables(NULL);
if (!file_exist(servicesf, NULL)) {
have_read_access = True;
have_write_access = True;
} else {
/* check if the authenticated user has write access - if not then
don't show write options */
have_write_access = (access(servicesf,W_OK) == 0);
/* if the user doesn't have read access to smb.conf then
don't let them view it */
have_read_access = (access(servicesf,R_OK) == 0);
}
show_main_buttons();
page = cgi_pathinfo();
/* Root gets full functionality */
if (have_read_access && strcmp(page, "globals")==0) {
globals_page();
} else if (have_read_access && strcmp(page,"shares")==0) {
shares_page();
} else if (have_read_access && strcmp(page,"printers")==0) {
printers_page();
} else if (have_read_access && strcmp(page,"status")==0) {
status_page();
} else if (have_read_access && strcmp(page,"viewconfig")==0) {
viewconfig_page();
} else if (strcmp(page,"passwd")==0) {
passwd_page();
} else {
welcome_page();
}
print_footer();
return 0;
}